Open Jobs

Senior Manager of Compliance and IAM in Woodcliff Lake, NJ at Amscan

Date Posted: 9/19/2022

Job Snapshot

Job Description

Company Overview:

Party City Holdco Inc. (PCHI) is a global leader in the celebrations industry. A vertically integrated designer, manufacturer, distributor, and retailer, PCHI offers consumer party goods in more than 100 countries around the world.

PCHI team members demonstrate a daily commitment to the company's Brand Purpose: to inspire joy by making it easy for customers to create unforgettable memories by connecting them to everything they need for life's many celebrations.

PCHI operates multiple business divisions, including the Retail Division and the Consumer Products Division. On the retail side, Party City (partycity.com) is a leading omnichannel retailer in the celebrations category, operating more than 800 company-owned and franchise stores throughout North America. Additional Halloween City (halloweencity.com) pop-up storefronts are also located throughout North America seasonally. Comprising the Consumer Products Group are design and manufacturing entities Amscan, an industry leader across multiple celebrations goods and costumes, and Anagram, a dominant player in balloons.

Description

Reporting to the PCHI Chief Information Security Officer (CISO), develop and manage the Global IT Risk Management and Compliance Functions responsible for identifying, analyzing, monitoring, and minimizing areas of risk that pertain to information technology and information security. In collaboration with the Office of the CIO, design, build, and oversee the implementation of network and computer security for the entire organization.

Key responsibilities include but are not limited to (list order not an indication of priority):

IT/Security Risk Management and Compliance

  • Work with IT/Business Management to develop PCHI’s IT Risk Management Strategy.
  • Drive effective implementation and communication of all Technology risk management policies and guidelines.
  • Direct and oversee the preparation of risk reports for review by multiple business areas and PCHI senior management.
  • Lead and contribute to policies and the identification and documentation of existing controls and operating procedures.
  • Lead and contribute to the design of KPI’s for evidence of successful and efficient performance.
  • Manage the annual completion IT Risk Self-Assessments by the PCHI business units.
  • Manage complex projects that involve working with the businesses to improve controls to mitigate any deficiencies.
  • Ensure controls meet regulatory and organization standards.
  • Use in-depth knowledge of information technology and market/industry trends to determine potential risks to the organization.
  • Assist IT in prioritization of risks risk initiatives and risk mitigation.
  • Perform periodic SOX ITGC readiness assessments for high risk business units and new acquisitions as needed.
  • Manage IT Vendor Risk Management program.

Cyber Security

  • Plan, research and design robust security architectures for any IT project.
  • Perform vulnerability testing, risk analyses and security assessments.
  • Test final security structures to ensure they behave as expected
  • Develop requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related network devices.
  • Research security standards, security systems and authentication protocols.
  • Stay current with the latest cyber security threat landscape and notify IT teams of applicability to the company’s systems.
  • Lead activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
  • Facilitate training and education efforts as appropriate for Party City personnel related to security policies, procedures, practices, awareness, and risks associated with technology, cyber and data security.

Access Management

  • Serve in an advisory capacity for the Access Request and New Hire systems in collaboration with HR and business units.
  • Manage access requests and new hire system tasks assigned to the Logical Access team.

 

Job Requirements

Qualifications:

5-7 years of experience in Compliance and IAM disciplines

CISA at minimum

CISM / CISSP are a plus

Get Job Alerts

Join Our Talent Network to sign up for job alerts and updates
so you can stay in the loop about openings we have right now and in the future.